Javascript Rule-Based Authentication


What does it do?

This rule shows how to check for variables in the querystring. As an example, the snippet below checks if the login transaction includes a query variable called some_querystring with a value whatever and if it does, it will add an attribute to the user profile.

An example of typical authorization URL:

The context.request.query object is parsed using the querystring module

Note: this rule works with any protocols supported by Auth0. For example, WS-Fed would be something like:

How do I use it?

Just create a new rule in the Auth0 dashboard, and copy the following code replacing the placeholders with the appropriate values.

What is Rule-Based Authentication?

A rule is arbitrary JavaScript code that can be used to extend Auth0s default behavior when authenticating a user. Enabled rules will be executed in the order shown below for all users and applications as the final step of the authentication process.

Rules can be used to enrich and transform the user profile, deny access to specific users under certain conditions, retrieve information from external services and much more. For more information about rules, please check the documentation